[release] prepare for 0.15.5

kares · kares · commit 889bd6dc6b74 · 2025-07-25T17:39:08.000+02:00
diff --git a/History.md b/History.md
@@ -1,3 +1,25 @@
+## 0.15.5
+
+* [deps] upgrade BC to version 1.81
+* Improving completeness of ASN1 encoding/decoding (#335)
+* [fix] OpenSSL::X509::CRL#to_pem when building CRL from scratch (#163)
+* [fix] OpenSSL::ASN1::ASN1Data encoding/decoding compatibility (#265)
+
+## 0.15.4
+
+* Verify hostname by default
+
+This addresses **CVE-2025-46551** and **GHSA-72qj-48g4-5xgx**.
+
+Users can work around this by applying this patch manually to their
+own jruby-openssl and jruby installs, or by re-enabling hostname
+verification with the following code early in application boot:
+```ruby
+require 'openssl'
+
+OpenSSL::SSL::SSLContext::DEFAULT_PARAMS[:verify_hostname] = true
+```
+
 ## 0.15.3
 
 * [fix] keep curve name when group is set into another key
diff --git a/lib/jopenssl/version.rb b/lib/jopenssl/version.rb
@@ -1,5 +1,5 @@
 module JOpenSSL
-  VERSION = '0.15.5.dev'
+  VERSION = '0.15.5'
   BOUNCY_CASTLE_VERSION = '1.81'
 end
 
diff --git a/pom.xml b/pom.xml
@@ -11,7 +11,7 @@ DO NOT MODIFY - GENERATED CODE
   <modelVersion>4.0.0</modelVersion>
   <groupId>rubygems</groupId>
   <artifactId>jruby-openssl</artifactId>
-  <version>0.15.5.dev-SNAPSHOT</version>
+  <version>0.15.5</version>
   <packaging>gem</packaging>
   <name>JRuby OpenSSL</name>
   <description>JRuby-OpenSSL is an add-on gem for JRuby that emulates the Ruby OpenSSL native library.</description>
